~jugmac00/launchpad:duplicate_ci_jobs

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

4fce6ae... by Jürgen Gmach on 2023-02-27

Add failing test for duplicate jobs issue

	docs:0 (build)
	lint:0 (build)
	mypy:0 (build)

1 → 3 of 3 results

First • Previous • Next • Last

ca8e093... by Simone Pelosi on 2023-03-29

Restricted user control on next_to redirect

A penetration test found that lougot redirect is vulnerable to open redirect
attack. "next_to" url is now validated: if it belongs to our domains, the
user is redirected to that url, otherwise the user is redirected to
a default url (homepage).

Merged from https://code.launchpad.net/~pelpsi/launchpad/+git/launchpad/+merge/439730

9b536b4... by Simone Pelosi on 2023-03-29

Upgraded gunicorn to fix HTTP request smuggling vulnerability

A penetration test found that our gunicorn version is vulnerable, version 20.1.0 should be safe.

Merged from https://code.launchpad.net/~pelpsi/launchpad/+git/launchpad/+merge/439504

f3871a2... by Simone Pelosi on 2023-03-29

Adjusted indexing code to include OVAL files

Now _writeSuite function supports OVAL data in various formats.
Added new test case for that functionality.

Merged from https://code.launchpad.net/~pelpsi/launchpad/+git/launchpad/+merge/439832

60cf045... by Simone Pelosi on 2023-03-29

Added new test case to reproduce CookieLogout behaviour

Test case to make sure the CookieLogout's redirect works with the new costraints

60c404b... by Simone Pelosi on 2023-03-29

Used name.encode() rather than six.ensure_binary(name)

six was used as part of the Python 2 to 3 port, and we haven't yet removed all the leftovers of that,
but we don't need to introduce new ones now.

a859184... by Simone Pelosi on 2023-03-28

Adjusted indexing code to include OVAL files

Now _writeSuite function supports OVAL data in various formats.
Added new test case for that functionality.

891d2f4... by Simone Pelosi on 2023-03-28

Added openid_provider_root domain in the check

Required check since login.launchpad.net isn't in allvhosts.hostnames

f78107f... by Colin Watson on 2023-03-27

charm: Update launchpad-layers to 1920a6f823

Merged from https://code.launchpad.net/~cjwatson/launchpad/+git/launchpad/+merge/439752

cf311b4... by Colin Watson on 2023-03-27

charm: Update launchpad-layers to 1920a6f823

This pulls in "Add many missing entries to launchpad-base-lazr.conf"
(making one line in
`charm/launchpad-appserver/templates/launchpad-appserver-lazr.conf`
redundant) and "Change the launchpad user's shell to /bin/bash".